{"id":"0f0a5f3c-19ff-4ba3-8151-3d53c101d925","shortId":"BHtZ66","kind":"skill","title":"aegisops-ai","tagline":"Autonomous DevSecOps & FinOps Guardrails. Orchestrates Gemini 3 Flash to audit Linux Kernel patches, Terraform cost drifts, and K8s compliance.","description":"# /aegisops-ai — Autonomous Governance Orchestrator\n\nAegisOps-AI is a professional-grade \"Living Pipeline\" \nthat integrates advanced AI reasoning directly into \nthe SDLC. It acts as an intelligent gatekeeper for \nsystems-level security, cloud infrastructure costs, \nand Kubernetes compliance.\n\n## Goal\n\nTo automate high-stakes security and financial audits by:\n1. Identifying logic-based vulnerabilities (UAF, Stale \nState) in Linux Kernel patches.\n2. Detecting massive \"Silent Disaster\" cost drifts in \nTerraform plans.\n3. Translating natural language security intent into \nhardened K8s manifests.\n\n## When to Use\n- **Kernel Patch Review:** Auditing raw C-based Git diffs for memory safety.\n- **Pre-Apply IaC Audit:** Analyzing `terraform plan` outputs to prevent bill spikes.\n- **Cluster Hardening:** Generating \"Least Privilege\" securityContexts for deployments.\n- **CI/CD Quality Gating:** Blocking non-compliant merges via GitHub Actions.\n\n## When Not to Use\n\n- **Web App Logic:** Do not use for standard web vulnerabilities (XSS, SQLi); use dedicated SAST scanners.\n- **Non-C Memory Analysis:** The patch analyzer is optimized for C-logic; avoid using it for high-level languages like Python or JS.\n- **Direct Resource Mutation:** This is an *auditor*, not a deployment tool. It does not execute `terraform apply` or `kubectl apply`.\n- **Post-Mortem Analysis:** For analyzing *why* a previous AI session failed, use `/analyze-project` instead.\n\n---\n## 🤖 Generative AI Integration\n\nAegisOps-AI leverages the **Google GenAI SDK** to implement a \"Reasoning Path\" for autonomous security and financial audits:\n\n* **Neural Patch Analysis:** Performs semantic code reviews of Linux Kernel patches, moving beyond simple pattern matching to understand complex memory state logic.\n* **Intelligent Cost Synthesis:** Processes raw Terraform plan diffs through a financial reasoning model to detect high-risk resource escalations and \"silent\" fiscal drifts.\n* **Natural Language Policy Mapping:** Translates human security intent into syntactically correct, hardened Kubernetes `securityContext` configurations.\n\n## 🧭 Core Modules\n\n### 1. 🐧 Kernel Patch Reviewer (`patch_analyzer.py`)\n\n* **Problem:** Manual review of Linux Kernel memory safety is time-consuming and prone to human error.\n* **Solution:** Gemini 3 performs a \"Deep Reasoning\" audit on raw Git diffs to detect critical memory corruption vulnerabilities (UAF, Stale State) in seconds.\n* **Key Output:** `analysis_results.json`\n\n### 2. 💰 FinOps & Cloud Auditor (`cost_auditor.py`)\n\n* **Problem:** Infrastructure-as-Code (IaC) changes can lead to accidental \"Silent Disasters\" and massive cloud bill spikes.\n* **Solution:** Analyzes `terraform plan` output to identify cost anomalies—such as accidental upgrades from `t3.micro` to high-performance GPU instances.\n* **Key Output:** `infrastructure_audit_report.json`\n\n### 3. ☸️ K8s Policy Hardener (`k8s_policy_generator.py`)\n\n* **Problem:** Implementing \"Least Privilege\" security contexts in Kubernetes is complex and often neglected.\n* **Solution:** Translates natural language security requirements into production-ready, hardened YAML manifests (Read-only root FS, Non-root enforcement, etc.).\n* **Key Output:** `hardened_deployment.yaml`\n\n## 🛠️ Setup & Environment\n\n### 1. Clone the Repository\n\n```bash\ngit clone https://github.com/Champbreed/AegisOps-AI.git\ncd AegisOps-AI\n```\n## 2. Setup\n\n```bash\npython3 -m venv venv\nsource venv/bin/activate\npip install google-genai python-dotenv\n```\n### 3. API Configuration\n\nCreate a `.env` file in the root directory to securely \nstore your credentials:\n\n```bash\necho \"GEMINI_API_KEY='your_api_key_here'\" > .env\n```\n## 🏁 Operational Dashboard\n\nTo execute the full suite of agents in sequence and generate all security reports:\n\n```bash\npython3 main.py\n```\n### Pattern: Over-Privileged Container\n\n* **Indicators:** `allowPrivilegeEscalation: true` or root user execution.\n* **Investigation:** Pass security intent (e.g., \"non-root only\") to the K8s Hardener module.\n\n---\n\n## 💡 Best Practices\n\n* **Context is King:** Provide at least 5 lines of context around Git diffs for more accurate neural reasoning.\n* **Continuous Gating:** Run the FinOps auditor before every infrastructure change, not after.\n* **Manual Sign-off:** Use AI findings as a high-fidelity signal, but maintain human-in-the-loop for kernel-level merges.\n\n---\n\n## 🔒 Security & Safety Notes\n\n* **Key Management:** Use CI/CD secrets for `GEMINI_API_KEY` in production.\n* **Least Privilege:** Test \"Hardened\" manifests in staging first to ensure no functional regressions.\n\n## Links\n\n+ - **Repository**: https://github.com/Champbreed/AegisOps-AI\n+ - **Documentation**: https://github.com/Champbreed/AegisOps-AI#readme\n\n## Limitations\n- Use this skill only when the task clearly matches the scope described above.\n- Do not treat the output as a substitute for environment-specific validation, testing, or expert review.\n- Stop and ask for clarification if required inputs, permissions, safety boundaries, or success criteria are missing.","tags":["aegisops","antigravity","awesome","skills","sickn33","agent-skills","agentic-skills","ai-agent-skills","ai-agents","ai-coding","ai-workflows","antigravity-skills"],"capabilities":["skill","source-sickn33","skill-aegisops-ai","topic-agent-skills","topic-agentic-skills","topic-ai-agent-skills","topic-ai-agents","topic-ai-coding","topic-ai-workflows","topic-antigravity","topic-antigravity-skills","topic-claude-code","topic-claude-code-skills","topic-codex-cli","topic-codex-skills"],"categories":["antigravity-awesome-skills"],"synonyms":[],"warnings":[],"endpointUrl":"https://skills.sh/sickn33/antigravity-awesome-skills/aegisops-ai","protocol":"skill","transport":"skills-sh","auth":{"type":"none","details":{"cli":"npx skills add sickn33/antigravity-awesome-skills","source_repo":"https://github.com/sickn33/antigravity-awesome-skills","install_from":"skills.sh"}},"qualityScore":"0.700","qualityRationale":"deterministic score 0.70 from registry signals: · indexed on github topic:agent-skills · 34997 github stars · SKILL.md body (5,058 chars)","verified":false,"liveness":"unknown","lastLivenessCheck":null,"agentReviews":{"count":0,"score_avg":null,"cost_usd_avg":null,"success_rate":null,"latency_p50_ms":null,"narrative_summary":null,"summary_updated_at":null},"enrichmentModel":"deterministic:skill-github:v1","enrichmentVersion":1,"enrichedAt":"2026-04-25T06:50:22.639Z","embedding":null,"createdAt":"2026-04-18T21:30:24.934Z","updatedAt":"2026-04-25T06:50:22.639Z","lastSeenAt":"2026-04-25T06:50:22.639Z","tsv":"'/aegisops-ai':23 '/analyze-project':234 '/champbreed/aegisops-ai':652 '/champbreed/aegisops-ai#readme':656 '/champbreed/aegisops-ai.git':471 '1':74,321,462 '2':87,369,476 '3':10,97,345,416,493 '5':572 'accident':384,403 'accur':581 'act':47 'action':154 'advanc':39 'aegisop':2,28,240,474 'aegisops-ai':1,27,239,473 'agent':527 'ai':3,29,40,230,237,241,475,601 'allowprivilegeescal':544 'analysi':179,224,260 'analysis_results.json':368 'analyz':128,182,226,393 'anomali':400 'api':494,512,515,631 'app':160 'appli':125,217,220 'around':576 'ask':690 'audit':13,72,113,127,257,350 'auditor':207,372,589 'autom':65 'autonom':4,24,253 'avoid':189 'base':78,117 'bash':466,478,509,535 'best':564 'beyond':270 'bill':134,390 'block':147 'boundari':698 'c':116,177,187 'c-base':115 'c-logic':186 'cd':472 'chang':380,593 'ci/cd':144,627 'clarif':692 'clear':665 'clone':463,468 'cloud':57,371,389 'cluster':136 'code':263,378 'complex':276,430 'complianc':22,62 'compliant':150 'configur':318,495 'consum':337 'contain':542 'context':426,566,575 'continu':584 'core':319 'correct':314 'corrupt':359 'cost':18,59,92,281,399 'cost_auditor.py':373 'creat':496 'credenti':508 'criteria':701 'critic':357 'dashboard':520 'dedic':172 'deep':348 'deploy':143,210 'describ':669 'detect':88,294,356 'devsecop':5 'diff':119,287,354,578 'direct':42,201 'directori':503 'disast':91,386 'document':653 'dotenv':492 'drift':19,93,303 'e.g':554 'echo':510 'enforc':455 'ensur':644 'env':498,518 'environ':461,681 'environment-specif':680 'error':342 'escal':299 'etc':456 'everi':591 'execut':215,522,549 'expert':686 'fail':232 'fidel':607 'file':499 'financi':71,256,290 'find':602 'finop':6,370,588 'first':642 'fiscal':302 'flash':11 'fs':451 'full':524 'function':646 'gate':146,585 'gatekeep':51 'gemini':9,344,511,630 'genai':245,489 'generat':138,236,531 'git':118,353,467,577 'github':153 'github.com':470,651,655 'github.com/champbreed/aegisops-ai':650 'github.com/champbreed/aegisops-ai#readme':654 'github.com/champbreed/aegisops-ai.git':469 'goal':63 'googl':244,488 'google-genai':487 'govern':25 'gpu':411 'grade':34 'guardrail':7 'harden':104,137,315,419,444,562,638 'hardened_deployment.yaml':459 'high':67,194,296,409,606 'high-fidel':605 'high-level':193 'high-perform':408 'high-risk':295 'high-stak':66 'human':309,341,612 'human-in-the-loop':611 'iac':126,379 'identifi':75,398 'implement':248,422 'indic':543 'infrastructur':58,376,592 'infrastructure-as-cod':375 'infrastructure_audit_report.json':415 'input':695 'instal':486 'instanc':412 'instead':235 'integr':38,238 'intellig':50,280 'intent':102,311,553 'investig':550 'js':200 'k8s':21,105,417,561 'k8s_policy_generator.py':420 'kernel':15,85,110,267,322,331,618 'kernel-level':617 'key':366,413,457,513,516,624,632 'king':568 'kubectl':219 'kubernet':61,316,428 'languag':100,196,305,437 'lead':382 'least':139,423,571,635 'level':55,195,619 'leverag':242 'like':197 'limit':657 'line':573 'link':648 'linux':14,84,266,330 'live':35 'logic':77,161,188,279 'logic-bas':76 'loop':615 'm':480 'main.py':537 'maintain':610 'manag':625 'manifest':106,446,639 'manual':327,596 'map':307 'massiv':89,388 'match':273,666 'memori':121,178,277,332,358 'merg':151,620 'miss':703 'model':292 'modul':320,563 'mortem':223 'move':269 'mutat':203 'natur':99,304,436 'neglect':433 'neural':258,582 'non':149,176,453,556 'non-c':175 'non-compli':148 'non-root':452,555 'note':623 'often':432 'oper':519 'optim':184 'orchestr':8,26 'output':131,367,396,414,458,675 'over-privileg':539 'pass':551 'patch':16,86,111,181,259,268,323 'patch_analyzer.py':325 'path':251 'pattern':272,538 'perform':261,346,410 'permiss':696 'pip':485 'pipelin':36 'plan':96,130,286,395 'polici':306,418 'post':222 'post-mortem':221 'practic':565 'pre':124 'pre-appli':123 'prevent':133 'previous':229 'privileg':140,424,541,636 'problem':326,374,421 'process':283 'product':442,634 'production-readi':441 'profession':33 'professional-grad':32 'prone':339 'provid':569 'python':198,491 'python-dotenv':490 'python3':479,536 'qualiti':145 'raw':114,284,352 'read':448 'read-on':447 'readi':443 'reason':41,250,291,349,583 'regress':647 'report':534 'repositori':465,649 'requir':439,694 'resourc':202,298 'review':112,264,324,328,687 'risk':297 'root':450,454,502,547,557 'run':586 'safeti':122,333,622,697 'sast':173 'scanner':174 'scope':668 'sdk':246 'sdlc':45 'second':365 'secret':628 'secur':56,69,101,254,310,425,438,505,533,552,621 'securitycontext':141,317 'semant':262 'sequenc':529 'session':231 'setup':460,477 'sign':598 'sign-off':597 'signal':608 'silent':90,301,385 'simpl':271 'skill':660 'skill-aegisops-ai' 'solut':343,392,434 'sourc':483 'source-sickn33' 'specif':682 'spike':135,391 'sqli':170 'stage':641 'stake':68 'stale':81,362 'standard':166 'state':82,278,363 'stop':688 'store':506 'substitut':678 'success':700 'suit':525 'syntact':313 'synthesi':282 'system':54 'systems-level':53 't3.micro':406 'task':664 'terraform':17,95,129,216,285,394 'test':637,684 'time':336 'time-consum':335 'tool':211 'topic-agent-skills' 'topic-agentic-skills' 'topic-ai-agent-skills' 'topic-ai-agents' 'topic-ai-coding' 'topic-ai-workflows' 'topic-antigravity' 'topic-antigravity-skills' 'topic-claude-code' 'topic-claude-code-skills' 'topic-codex-cli' 'topic-codex-skills' 'translat':98,308,435 'treat':673 'true':545 'uaf':80,361 'understand':275 'upgrad':404 'use':109,158,164,171,190,233,600,626,658 'user':548 'valid':683 'venv':481,482 'venv/bin/activate':484 'via':152 'vulner':79,168,360 'web':159,167 'xss':169 'yaml':445","prices":[{"id":"53a7209d-0910-4500-993b-497a6554b0a2","listingId":"0f0a5f3c-19ff-4ba3-8151-3d53c101d925","amountUsd":"0","unit":"free","nativeCurrency":null,"nativeAmount":null,"chain":null,"payTo":null,"paymentMethod":"skill-free","isPrimary":true,"details":{"org":"sickn33","category":"antigravity-awesome-skills","install_from":"skills.sh"},"createdAt":"2026-04-18T21:30:24.934Z"}],"sources":[{"listingId":"0f0a5f3c-19ff-4ba3-8151-3d53c101d925","source":"github","sourceId":"sickn33/antigravity-awesome-skills/aegisops-ai","sourceUrl":"https://github.com/sickn33/antigravity-awesome-skills/tree/main/skills/aegisops-ai","isPrimary":false,"firstSeenAt":"2026-04-18T21:30:24.934Z","lastSeenAt":"2026-04-25T06:50:22.639Z"}],"details":{"listingId":"0f0a5f3c-19ff-4ba3-8151-3d53c101d925","quickStartSnippet":null,"exampleRequest":null,"exampleResponse":null,"schema":null,"openapiUrl":null,"agentsTxtUrl":null,"citations":[],"useCases":[],"bestFor":[],"notFor":[],"kindDetails":{"org":"sickn33","slug":"aegisops-ai","github":{"repo":"sickn33/antigravity-awesome-skills","stars":34997,"topics":["agent-skills","agentic-skills","ai-agent-skills","ai-agents","ai-coding","ai-workflows","antigravity","antigravity-skills","claude-code","claude-code-skills","codex-cli","codex-skills","cursor","cursor-skills","developer-tools","gemini-cli","gemini-skills","kiro","mcp","skill-library"],"license":"mit","html_url":"https://github.com/sickn33/antigravity-awesome-skills","pushed_at":"2026-04-25T06:33:17Z","description":"Installable GitHub library of 1,400+ agentic skills for Claude Code, Cursor, Codex CLI, Gemini CLI, Antigravity, and more. Includes installer CLI, bundles, workflows, and official/community skill collections.","skill_md_sha":"d12f68b556bedacb8ee6c3aba406e14ab8654c57","skill_md_path":"skills/aegisops-ai/SKILL.md","default_branch":"main","skill_tree_url":"https://github.com/sickn33/antigravity-awesome-skills/tree/main/skills/aegisops-ai"},"layout":"multi","source":"github","category":"antigravity-awesome-skills","frontmatter":{"name":"aegisops-ai","description":"Autonomous DevSecOps & FinOps Guardrails. Orchestrates Gemini 3 Flash to audit Linux Kernel patches, Terraform cost drifts, and K8s compliance."},"skills_sh_url":"https://skills.sh/sickn33/antigravity-awesome-skills/aegisops-ai"},"updatedAt":"2026-04-25T06:50:22.639Z"}}